From f989a9e9a9d17a56e3d1322b9d1550c7e281577f Mon Sep 17 00:00:00 2001 From: Krzysztof Opasiak Date: Wed, 5 Jun 2019 23:30:42 +0200 Subject: Document OJSI-63 (CVE-2019-12124) vulnerability Issue-ID: OJSI-63 Signed-off-by: Krzysztof Opasiak Change-Id: Ide989877e0f2765302ad423c0b421e972b4e8046 --- docs/release-notes.rst | 1 + 1 file changed, 1 insertion(+) (limited to 'docs') diff --git a/docs/release-notes.rst b/docs/release-notes.rst index a6aad66f3..fa09a4e31 100644 --- a/docs/release-notes.rst +++ b/docs/release-notes.rst @@ -117,6 +117,7 @@ The Dublin release added the following functionality: - CVE-2019-12316 `OJSI-25 `_ - SQL Injection in APPC - `OJSI-29 `_ - Unsecured Swagger UI Interface in AAPC + - CVE-2019-12124 `OJSI-63 `_ - APPC exposes Jolokia Interface which allows to read and overwrite any arbitrary file *Known Vulnerabilities in Used Modules* -- cgit 1.2.3-korg